Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
blind sql injection vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2006-0123
Multiple SQL injection vulnerabilities in ADN Forum 1.0b allow remote malicious users to execute arbitrary SQL commands via the (1) fid parameter in index.php and (2) pagid parameter in verpag.php, and possibly other vectors.
Adn Forum Adn Forum 1.0
Adn Forum Adn Forum 1.0b
1 EDB exploit
755
VMScore
CVE-2008-1954
SQL injection vulnerability in one_day.php in Web Calendar Pro 4.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the user_id parameter.
Webcalendar Web Calendar Pro
Webcalendar Web Calendar Pro 4.0
1 EDB exploit
755
VMScore
CVE-2009-3336
SQL injection vulnerability in auction_details.php in PHP Pro Bid allows remote malicious users to execute arbitrary SQL commands via the auction_id parameter.
Phpprobid Php Pro Bid
1 EDB exploit
755
VMScore
CVE-2006-4267
Multiple SQL injection vulnerabilities in CubeCart 3.0.11 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) oid parameter in modules/gateway/Protx/confirmed.php and the (2) x_invoice_num parameter in modules/gateway/Authorize/confirm...
Devellion Cubecart 3.0.3
Devellion Cubecart 3.0.7
Devellion Cubecart 3.0.6
Devellion Cubecart 3.0.11
Devellion Cubecart 3.0.4
Devellion Cubecart 3.0.7-pl1
1 EDB exploit
755
VMScore
CVE-2008-2425
SQL injection vulnerability in index.php in FicHive 1.0 allows remote malicious users to execute arbitrary SQL commands via the letter parameter in a Search action, a different vector than CVE-2008-2416. NOTE: the provenance of this information is unknown; the details are obtaine...
Fichive Fichive 1.0
1 EDB exploit
685
VMScore
CVE-2009-2337
SQL injection vulnerability in includes/module/book/index.inc.php in w3b|cms Gaestebuch Guestbook Module 3.0.0, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the spam_id parameter.
W3bcms Gaestebuch Guestbook Module 3.0.0
1 EDB exploit
755
VMScore
CVE-2012-1116
SQL injection vulnerability in Joomla! 1.7.x and 2.5.x prior to 2.5.2 allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Joomla Joomla! 1.7.1
Joomla Joomla! 1.7.4
Joomla Joomla! 2.5.1
Joomla Joomla! 1.7.0
Joomla Joomla! 1.7.5
Joomla Joomla! 1.7.3
Joomla Joomla! 2.5.0
Joomla Joomla! 1.7.2
1 EDB exploit
NA
CVE-2007-5125
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2007-1171. Reason: This candidate is a duplicate of CVE-2007-1171. Notes: All CVE users should reference CVE-2007-1171 instead of this candidate. All references and descriptions in this candidate have been removed...
1 EDB exploit
755
VMScore
CVE-2009-0768
SQL injection vulnerability in forumhop.php in YapBB 1.2 and previous versions allows remote malicious users to execute arbitrary SQL commands via the forumID parameter in a next action.
Yapbb Yapbb
Yapbb Yapbb 1.1
Yapbb Yapbb 1.2
1 EDB exploit
755
VMScore
CVE-2009-0963
Multiple SQL injection vulnerabilities in PHPRunner 4.2, and possibly earlier, allow remote malicious users to execute arbitrary SQL commands via the SearchField parameter to (1) UserView_list.php, (2) orders_list.php, (3) users_list.php, and (4) Administrator_list.php.
Xlinesoft Phprunner
Xlinesoft Phprunner 3.1
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »